Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/lpXHiSKoQZfWp6wDCzy36VZPp24.roa
File: lpXHiSKoQZfWp6wDCzy36VZPp24.roa (raw, json)
Hash identifier: yAFqyCT9KEdKtL+5YBgO5qBTqKOtJCGn7yizStrJ3Sg=
Subject key identifier: 96:95:C7:89:22:A8:41:97:D6:A7:AC:03:0B:3C:B7:E9:56:4F:A7:6E
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 0190CF3C61E1E7FFEBA44C739839D44DBA88
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/lpXHiSKoQZfWp6wDCzy36VZPp24.roa
Signing time: Sat 20 Jul 2024 08:22:39 +0000
ROA not before: Sat 20 Jul 2024 08:22:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.140.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jul 2024 19:45:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:cf:3c:61:e1:e7:ff:eb:a4:4c:73:98:39:d4:4d:ba:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: Jul 20 08:22:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9695c78922a84197d6a7ac030b3cb7e9564fa76e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2f:16:1a:92:de:3c:1e:da:79:58:a2:8d:a7:
c5:33:fb:1e:d8:47:79:4d:02:00:3d:76:fa:14:c3:
4c:98:0d:7a:3e:c8:6c:36:b1:ff:72:2f:dc:91:8f:
c1:75:8b:fe:05:2e:12:c8:f1:b6:c8:49:bd:91:d6:
53:5f:41:90:4f:e9:b2:1b:b3:5b:4d:cd:21:93:c0:
9a:d9:7a:37:83:1f:1e:f8:42:ba:4e:25:c0:2b:4c:
e7:69:c6:50:19:d7:22:54:15:76:e1:96:66:9c:97:
39:ad:00:52:dc:e0:f5:64:68:d8:a3:9a:90:0b:4a:
2f:8c:e3:6d:81:2c:95:d9:f1:4d:56:fe:98:6d:42:
32:53:23:32:42:1e:c5:dc:db:c1:1c:72:1c:b4:98:
8d:bf:70:35:d3:bf:fd:27:2c:d8:16:5a:12:aa:5d:
c8:7c:c0:d9:6c:6d:d2:51:43:c6:8d:72:52:6a:80:
60:26:1d:e7:36:a1:ac:b5:37:de:d2:68:e8:a2:f7:
91:d7:12:a8:62:aa:07:73:92:b9:39:41:96:71:a4:
3d:47:fd:77:7b:47:9b:cb:dd:2d:98:d9:48:0a:2e:
30:fa:b6:0d:f3:22:4c:9e:2f:52:c7:c0:e4:d1:c7:
3a:fd:73:db:80:ef:d8:3b:ca:6f:1a:48:07:b1:4e:
9a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:95:C7:89:22:A8:41:97:D6:A7:AC:03:0B:3C:B7:E9:56:4F:A7:6E
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/lpXHiSKoQZfWp6wDCzy36VZPp24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.59.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:35:ad:a7:98:f6:39:27:fb:58:c3:f7:5d:c7:7d:54:a6:ed:
75:dd:fc:8d:08:1f:36:39:2b:45:88:f1:22:7f:bf:d9:00:a5:
44:21:d8:51:20:b8:0b:fb:51:81:7b:97:f5:2d:47:f6:f1:73:
99:6e:57:d8:52:e1:46:6c:9f:17:49:af:c5:b0:29:08:0d:95:
14:e1:55:1d:c5:26:d4:96:9a:49:df:8f:2e:2e:eb:df:da:0e:
8f:df:b8:9a:dd:08:96:5f:06:d1:23:a2:1c:d4:6e:2d:89:96:
63:54:8c:a0:29:05:37:75:15:c4:3d:6a:77:e1:80:b5:91:c2:
65:e4:3d:42:7d:0f:72:4a:22:cd:fc:ab:bd:8d:1c:1c:cf:00:
60:81:aa:fb:29:6c:a4:1a:59:23:25:47:01:f8:a8:43:77:b1:
75:ad:9a:74:be:aa:2c:5b:24:40:f8:5f:03:38:d1:0a:8a:87:
c2:ff:52:61:63:fc:c6:3f:af:77:c3:80:c2:0a:13:80:76:12:
43:4f:b9:fb:ac:b8:26:c5:aa:c0:c2:9f:e4:0d:cc:11:1c:26:
c9:d3:2a:9e:ba:2f:37:07:ab:2a:b3:b0:42:e6:33:7f:12:e6:
26:b9:3f:6f:c1:23:cc:80:2f:1d:bd:5c:d0:03:0b:f9:30:8d:
7c:42:89:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 22 21:28:39 2024 by rpki-client on console-fra.rpki-client.org